| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 20 Feb 2015 07:11:02 +0900 From: Tetsuo Handa <penguin-kernel@...ove.SAKURA.ne.jp> To: dave@...olabs.net Cc: akpm@...ux-foundation.org, linux-mm@...ck.org, linux-kernel@...r.kernel.org, takedakn@...data.co.jp, linux-security-module@...r.kernel.org Subject: Re: [PATCH 3/3] tomoyo: robustify handling of mm->exe_file Davidlohr Bueso wrote: > On Thu, 2015-02-19 at 20:07 +0900, Tetsuo Handa wrote: > > Why do we need to let the caller call path_put() ? > > There is no need to do like proc_exe_link() does, for > > tomoyo_get_exe() returns pathname as "char *". > > Having the pathname doesn't guarantee anything later, and thus doesn't > seem very robust in the manager call if it can be dropped during the > call... or can this never occur in this context? > tomoyo_get_exe() returns the pathname of executable of current thread. The executable of current thread cannot be changed while current thread is inside the manager call. Although the pathname of executable of current thread could be changed by other threads via namespace manipulation like pivot_root(), holding a reference guarantees nothing. Your patch helps for avoiding memory allocation with mmap_sem held, but does not robustify handling of mm->exe_file for tomoyo. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists